| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-5914 | Libarchive: double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c | - | - | High | 7.8 | 2025-06-09 19:53:49 | Deep Dive |
| CVE-2025-5918 | Libarchive: reading past eof may be triggered for piped file streams | - | - | Low | 3.9 | 2025-06-09 19:49:14 | Deep Dive |
| CVE-2025-5917 | Libarchive: off by one error in build_ustar_entry_name() at archive_write_set_format_pax.c | - | - | Low | 2.8 | 2025-06-09 19:49:13 | Deep Dive |
| CVE-2025-5916 | Libarchive: integer overflow while reading warc files at archive_read_support_format_warc.c | - | - | Low | 3.9 | 2025-06-09 19:49:08 | Deep Dive |
| CVE-2025-5915 | Libarchive: heap buffer over read in copy_from_lzss_window() at archive_read_support_format_rar.c | - | - | Medium | 6.6 | 2025-06-09 19:49:02 | Deep Dive |
| CVE-2025-5791 | Users: `root` appended to group listings | - | - | High | 7.1 | 2025-06-06 13:10:07 | Deep Dive |
| CVE-2025-0620 | Samba: smbd doesn't pick up group membership changes when re-authenticating an expired smb session | - | - | Medium | 4.9 | 2025-06-06 13:10:07 | Deep Dive |
| CVE-2025-4598 | Systemd-coredump: race condition that allows a local attacker to crash a suid program and gain read access to the resulting core dump | - | - | Medium | 4.7 | 2025-05-30 13:13:26 | Deep Dive |
| CVE-2025-5278 | Coreutils: heap buffer under-read in gnu coreutils sort via key specification | - | - | Medium | 4.4 | 2025-05-27 20:52:59 | Deep Dive |
| CVE-2025-5222 | Icu: stack buffer overflow in the srbroot::addtag function | - | - | High | 7.0 | 2025-05-27 20:51:51 | Deep Dive |
| CVE-2025-23393 | Reflected XSS in spacewalk-java | SUSE | Container suse/manager/5.0/x86_64/server:5.0.4.7.19.1 | Medium | 5.2 | 2025-05-27 07:23:39 | Deep Dive |
| CVE-2025-23392 | Reflected XSS in SystemsController.java in spacewalk-java | SUSE | Container suse/manager/5.0/x86_64/server:5.0.4.7.19.1 | Medium | 5.2 | 2025-05-26 16:06:26 | Deep Dive |
| CVE-2025-4574 | Crossbeam-channel: crossbeam-channel vulnerable to double free on drop | - | - | Medium | 6.5 | 2025-05-13 21:47:25 | Deep Dive |
| CVE-2025-1993 | IBM App Connect Enterprise Certified Container information disclosure | IBM | App Connect Enterprise Certified Container | Medium | 5.1 | 2025-05-09 17:12:10 | Deep Dive |
| CVE-2025-4432 | Ring: some aes functions may panic when overflow checking is enabled in ring | - | - | Medium | 5.3 | 2025-05-09 16:06:34 | Deep Dive |
| CVE-2025-4382 | Grub2: grub allow access to encrypted device through cli once root device is unlocked via tpm | - | - | Medium | 5.9 | 2025-05-09 11:59:33 | Deep Dive |
| CVE-2025-3576 | Krb5: kerberos rc4-hmac-md5 checksum vulnerability enabling message spoofing via md5 collisions | - | - | Medium | 5.9 | 2025-04-15 05:55:27 | Deep Dive |
| CVE-2025-3416 | Rust-openssl: rust-openssl use-after-free in `md::fetch` and `cipher::fetch` | - | - | Low | 3.7 | 2025-04-08 18:24:22 | Deep Dive |
| CVE-2024-7631 | Openshift-console: openshift console: path traversal | - | - | Medium | 4.3 | 2025-03-19 18:47:28 | Deep Dive |
| CVE-2024-8176 | Libexpat: expat: improper restriction of xml entity expansion depth in libexpat | - | - | High | 7.5 | 2025-03-14 08:19:49 | Deep Dive |